Vulnerabilities > Carrcommunications
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-11-04 | CVE-2024-50531 | Unrestricted Upload of File with Dangerous Type vulnerability in Carrcommunications Rsvpmaker Unrestricted Upload of File with Dangerous Type vulnerability in David F. | 9.8 |
2023-12-29 | CVE-2023-25054 | Unspecified vulnerability in Carrcommunications Rsvpmaker Improper Control of Generation of Code ('Code Injection') vulnerability in David F. | 9.8 |
2023-11-03 | CVE-2023-41652 | Unspecified vulnerability in Carrcommunications Rsvpmaker Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. | 9.8 |
2023-10-31 | CVE-2023-25045 | SQL Injection vulnerability in Carrcommunications Rsvpmaker Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. | 7.2 |
2023-10-31 | CVE-2023-25047 | Unspecified vulnerability in Carrcommunications Rsvpmaker Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. | 7.2 |
2023-09-27 | CVE-2023-27616 | Unspecified vulnerability in Carrcommunications Rsvpmaker Unauth. | 6.1 |
2023-09-27 | CVE-2023-27617 | Cross-site Scripting vulnerability in Carrcommunications Rsvpmaker Auth. | 4.8 |
2023-07-10 | CVE-2023-29095 | SQL Injection vulnerability in Carrcommunications Rsvpmaker Auth. | 7.2 |
2022-06-13 | CVE-2022-1768 | Unspecified vulnerability in Carrcommunications Rsvpmaker The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to insufficient escaping and parameterization on user supplied data passed to multiple SQL queries in the ~/rsvpmaker-email.php file. | 7.5 |
2022-05-10 | CVE-2022-1453 | SQL Injection vulnerability in Carrcommunications Rsvpmaker The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to missing SQL escaping and parameterization on user supplied data passed to a SQL query in the rsvpmaker-util.php file. | 7.5 |